• Votes

    1

    MFA/2FA on SSH proxy login

    Ability to enable 2fa/mfa on the login to the SSH proxy, as well as be able to do it for individual proxy targets. And to pass the 2fa/mfa to the proxy targets, instead ...

  • Votes

    3

    Active user messaging via SSHRelay

    The ability to send messages to active users connecting through relays would be valuable in the instances where people have long running sessions that intersect with ...

  • Votes

    3

    Easier credential checkout

    Currently you need to type in your e-mail address and a reason to checkout credentials. In some cases this might be useful, but for many of the use case of our customers ...

  • Votes

    2

    Filters in PAM Reporting based on contextual information

    The idea is to capture and display in PAM Reporting console additional contextual information and being able to apply filters based on such information. For example, this ...

  • Votes

    1

    Support multitenant environments

    Support multitenant environments

  • Votes

    4

    Display drop down list for device IP/Hostname selection instead of ...

    The emergency request in new GUI (>3.6) allow the requester to manually input the server ip or hostname, that post another issue: 1. Case sensitive - will not match with ...

  • Votes

    3

    Show or Notify user when same RDP session is being used by other user

    Require to show or notify user when same RDP session is being used by other user to prevent disconnect other user RDP session.

  • Votes

    3

    Emergency credential dump

    Many prospects have asked for the ability to recover/dump registered credentials in PAM so they can keep working outside the framework if something goes wrong with it. ...

  • Votes

    8

    Auditing the "Export Report" function

    Because of certain GDPR requirements my customer needs an enhancement for NPAM logging. They would like to see an audit entry in the "Change Management" report about any ...

  • Votes

    2

    Allow per-connection contract configuration for WSFed

    The WSFed connection interface only allows for contract assignment for the protocol, not on a per-connection basis like SAML2. For connections that require different ...

  • Votes

    4

    Recovering all credentials from PAM in a list format

    Let’s suppose a disaster happened and the credentials (e.g. root, administrator) are all stored on PAM. To avoid any dependency of someone knowing each credential, it ...

  • Votes

    4

    Can we also have risk of host and/or application plus the account ...

    If we have a risk rating of the endpoint being connected to then we can do the following: 1. import risk details from identity governance and other tools. 2. make rules ...

  • Votes

    6

    Improve PAM Sniffer capabilities to give insight on usage of sudo or ...

    It seems to me that our PAM Sniffer tool could improve an assessment of the situation by indicating which systems make use of privilege escalations and which users ...

  • Planned

    17

    Improve GUI - general

    Please improve your GUI, it's really terrible as it is... - add users - manually typing them, REALLY ? - configuring shared keys - finding out what needs to be defined is ...

  • Planned

    10

    Dashboard for active sessions

    PAM should have a Dashboard that shows the active sessions.

  • Planned

    12

    Export keystroke report as a csv from Reporting Console

    There is a need to be able to export a session's keystroke report from within the Reporting Console for external ticket systems. It is possible to do this with Pam's ...

  • Planned

    11

    Monitor ftp, sftp, scp sessions

    There is a need to monitor / audit ftp, sftp, scp activity. Also known as Bugzilla Enhancement ID 999986.

  • Planned

    9

    Allow users to view their own audited sessions (end-user reports)

    There is a need for users to be able to view a list of their own previous sessions, view the keystroke report, etc. A user may want to revisit what they did in a previous ...

  • Votes

    9

    command risk option must also work on ssh-relay

    "command risk" option works perfectly with PKCSH shell but it does not apply when connecting via ssh-relay option(via myaccess page). ssh-relay option has no advantage ...